package com.edu.ucenterservice.controller;

import com.edu.common.utils.JwtUtils;
import com.edu.eduservicebase.exception.GuliException;
import com.edu.ucenterservice.entity.UcenterMember;
import com.edu.ucenterservice.service.UcenterMemberService;
import com.edu.ucenterservice.utils.ConstantPropertiesUtil;
import com.edu.ucenterservice.utils.HttpClientUtils;
import com.google.gson.Gson;
import com.google.gson.JsonSyntaxException;
import io.swagger.annotations.Api;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Controller;
import org.springframework.util.StringUtils;
import org.springframework.web.bind.annotation.CrossOrigin;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RequestMapping;

import javax.servlet.http.HttpSession;
import javax.validation.constraints.Null;
import java.io.UnsupportedEncodingException;
import java.lang.reflect.Member;
import java.net.URLEncoder;
import java.util.HashMap;

@Api("微信登录")
@CrossOrigin
@Controller
@RequestMapping("/api/ucenter/wx")
public class WxApiController {
    @Autowired
    private UcenterMemberService ucenterMemberService;

    /**
     * 获取扫码人 信息!
     * @param code
     * @param state
     * @param session
     * @return
     */
    @GetMapping("/callback")
    public  String callback(String code, String state, HttpSession session){
        //得到授权临时票据code
        System.out.println("code = " + code);
        System.out.println("state = " + state);
        String jwtToken = null;
        UcenterMember member = new UcenterMember();
        try {
            //从redis中将state获取出来，和当前传入的state作比较

//如果一致则放行，如果不一致则抛出异常：非法访问
//向认证服务器发送请求换取access_token
            String baseAccessTokenUrl =
                    "https://api.weixin.qq.com/sns/oauth2/access_token" +
                            "?appid=%s" +
                            "&secret=%s" +
                            "&code=%s" +
                            "&grant_type=authorization_code";

            String accessTokenUrl = String.format(baseAccessTokenUrl, ConstantPropertiesUtil.WX_OPEN_APP_ID,
                    ConstantPropertiesUtil.WX_OPEN_APP_SECRET,code);

            String result = null;
            try {
                result = HttpClientUtils.get(accessTokenUrl);
                System.out.println("accessToken=============" + result);
            } catch (Exception e) {
                throw new GuliException(20001, "获取access_token失败");
            }

            //解析json字符串
            Gson gson =new Gson();
            HashMap map = gson.fromJson(result, HashMap.class);
            String access_token = (String) map.get("access_token");
            String openid = (String) map.get("openid");

            //查询数据库当前用用户是否曾经使用过微信登录
            UcenterMember ucenterMember =ucenterMemberService.getByOpenid(openid);
            if (ucenterMember==null){

                //访问微信的资源服务器，获取用户信息
                String baseUserInfoUrl = "https://api.weixin.qq.com/sns/userinfo" +
                        "?access_token=%s" +
                        "&openid=%s";

                String userInfoUrl = String.format(baseUserInfoUrl, access_token, openid);

                String resultUserInfo = null;

                try {
                    resultUserInfo=HttpClientUtils.get(userInfoUrl);
                    System.out.println("resultUserInfo==========" + resultUserInfo);
                } catch (Exception e) {
                    throw new GuliException(20001, "获取用户信息失败");
                }

                //解析json
                HashMap hashMap = gson.fromJson(resultUserInfo, HashMap.class);
                String nickname = (String) hashMap.get("nickname");
                String headimgurl = (String) hashMap.get("headimgurl");

                //向数据库中插入一条记录


                    member.setNickname(nickname);
                    member.setOpenid(openid);
                    member.setAvatar(headimgurl);
                    ucenterMemberService.save(member);

            }
            UcenterMember utm = ucenterMemberService.getByOpenid(openid);

            String id = utm.getId();
            String nickname = utm.getNickname();


            // 生成jwt
            jwtToken = JwtUtils.getJwtToken(id, nickname);


            //存入cookie
//CookieUtils.setCookie(request, response, "guli_jwt_token", token);
            //因为端口号不同存在蛞蝓问题，cookie不能跨域，所以这里使用url重写
        } catch (Exception e) {
            e.printStackTrace();
        }

        //localhost:3000
        return "redirect:http://localhost:3000?token="+jwtToken;

    }


    /**
     * 微信扫码登录!
     * @param session
     * @return
     */
    @GetMapping("/login")
    public String genQrConnect(HttpSession session){
        // 微信开放平台授权baseUrl
        String baseUrl = "https://open.weixin.qq.com/connect/qrconnect" +
                "?appid=%s" +
                "&redirect_uri=%s" +
                "&response_type=code" +
                "&scope=snsapi_login" +
                "&state=%s" +
                "#wechat_redirect";

        // 回调地址
        String redirectUrl = ConstantPropertiesUtil.WX_OPEN_REDIRECT_URL;

        try {
            redirectUrl = URLEncoder.encode(redirectUrl,"UTF-8");//url编码
        } catch (UnsupportedEncodingException e) {
            throw new GuliException(20001, e.getMessage());
        }

        // 防止csrf攻击（跨站请求伪造攻击）
        //String state = UUID.randomUUID().toString().replaceAll("-", "");//一般情况下会使用一个随机数
        String state = "localhost";//为了让大家能够使用我搭建的外网的微信回调跳转服务器，这里填写你在ngrok的前置域名
       // System.out.println("state = " + state);
        // 采用redis等进行缓存state 使用sessionId为key 30分钟后过期，可配置
        //键："wechar-open-state-" + httpServletRequest.getSession().getId()
        //值：satte
        //过期时间：30分钟

        //生成qrcodeUrl
        String qrcodeUrl = String.format(
                baseUrl,
                ConstantPropertiesUtil.WX_OPEN_APP_ID,
                redirectUrl,
                state);

       // System.out.println(qrcodeUrl);

        return "redirect:" + qrcodeUrl;
    }

}
